Extracted

• • Target

    c4c861dda94e9b3275d123e78d73bb9180b618855730eb2217a656d14e35a854

  • Size

    6.4MB

  • MD5

    06b767bf2a7deac9b9e524c5b6986bf7

  • SHA1

    8a0d79d7d04b89658394d72c4071a1f4037f32b2

  • SHA256

    c4c861dda94e9b3275d123e78d73bb9180b618855730eb2217a656d14e35a854

  • SHA512

    0ba0e7d75355847bf9a124fd35a69f3f5281a351f730bd4bab23ad3c5466a40fda58871c77314557d42082c98a476b20fb68351dfbfb635cd6a958ab19765300

  • SSDEEP

    98304:YNMJ9r+xEJ3cLCB4Ty9Q0GhdjzK4KcNaUqE:RJ9r+x+iiyH7U4KcEPE

  Score

  10^/10

  cryptbotdiscoveryspywarestealercredential_access

  • CryptBot

    CryptBot is a C++ stealer distributed widely in bundle with other software.

    spywarestealercryptbot

  • Credentials from Password Stores: Credentials from Web Browsers

    Malicious Access or copy of Web Browser Credential store.

    credential_accessstealer

  • Reads user/profile data of web browsers

    Infostealers often target stored browser data, which can include saved credentials etc.

    spywarestealer

  • Checks installed software on the system

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  behavioral1behavioral2